<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=2975524&amp;fmt=gif">
BLOG

Aggregation in a High Density Fiber Network

August 8, 2019

network aggregation network visibility garland technology

High density networks can create infrastructure challenges related to figuring out how to ensure all network links are being analyzed by security and monitoring tools. This was the case with one major European telecommunications company. They were looking to capture traffic from 60 10G links to forward to their Forescout boxes for analysis.

The main problem they were running into was that when you TAP a single network link with a passive fiber TAP, you need two monitoring ports on the tool you’re sending the traffic to in order to copy the transmit and receive streams of traffic. So with the 60 links being tapped, the customer was left with needing 120 monitoring ports on their Forescout boxes in order to ensure each link is being properly analyzed. That was a huge problem, as they only had two Forescout boxes, each with four 10G ports. The customer had two options, either purchase dozens of Forescout boxes which would add to the infrastructure challenges, or use aggregation as a means to reduce those 120 links down to a manageable number for the boxes.

telefonica

This is where they turned to Garland Technology.  Our partner in Spain knew that our PacketMAX™: Advanced Aggregators are a powerful, yet cost-effective solution for aggregation and load balancing at higher network speeds. Building on these pain points, the Design-IT team at Garland put together a solution that not only solved the needs of the customer today, but provided some flexibility for future growth.  

>> Download Now: Aggregation [Free whitepaper]


Using four of Garland Technology’s SelecTAP™: Fiber Modular Chassis, 60 passive fiber TAPs were added to TAP the 60 links the customer wanted to monitor. The resulting 120 links of tapped traffic feed into a PacketMAX 100G 64 port Advanced Aggregator. With the Advanced Aggregator being a 100G box, in order to get a 10G connection, multi-mode 40G QSFP+ were used that are then connected to a MTP12 breakout cable with an 8LC simplex cable on the other end, allowing full-duplex connections into the two Forescout boxes. Breakout cables simplify the cabling needed for this solution, since only one cable is needed to connect 4 10G connections to the Advanced Aggregator. 

Flexible and Scalable Design

Another pain point this solution solved for the customer was the knowledge that their network would be growing over the next couple of years and they were looking for a design that would grow with them, rather than have to start from scratch. By using the SelectTAP, the customer got a high density solution, that still provides the option to tap 36 additional links as their network needs grow over time. 

Additionally, there are also open ports on the Advanced Aggregator. Today the customer is only using 32 of the 64 ports, so the customer can either bring in 128 additional monitoring ports as their network grows, or they can add additional 100G monitoring tools down the road. 

It’s a cost-effective aggregation, load balancing, and filtering solution, capable of monitoring 192 10G ports in only a 6U footprint, built from scalable and modular products for future growth.

Looking to add an aggregation solutions to your next deployment, but not sure where to start? Join us for a brief network Design-IT consultation or demo. No obligation - it’s what we love to do!

Network Aggregation maximizes network visibility and optimize network packet broker ports

See Everything. Secure Everything.

Contact us now to secure and optimized your network operations
Contact Us

Heartbeats Packets Inside the Bypass TAP

If the inline security tool goes off-line, the TAP will bypass the tool and automatically keep the link flowing. The Bypass TAP does this by sending heartbeat packets to the inline security tool. As long as the inline security tool is on-line, the heartbeat packets will be returned to the TAP, and the link traffic will continue to flow through the inline security tool.

If the heartbeat packets are not returned to the TAP (indicating that the inline security tool has gone off-line), the TAP will automatically 'bypass' the inline security tool and keep the link traffic flowing. The TAP also removes the heartbeat packets before sending the network traffic back onto the critical link.

While the TAP is in bypass mode, it continues to send heartbeat packets out to the inline security tool so that once the tool is back on-line, it will begin returning the heartbeat packets back to the TAP indicating that the tool is ready to go back to work. The TAP will then direct the network traffic back through the inline security tool along with the heartbeat packets placing the tool back inline.

Some of you may have noticed a flaw in the logic behind this solution!  You say, “What if the TAP should fail because it is also in-line? Then the link will also fail!” The TAP would now be considered a point of failure. That is a good catch – but in our blog on Bypass vs. Failsafe, I explained that if a TAP were to fail or lose power, it must provide failsafe protection to the link it is attached to. So our network TAP will go into Failsafe mode keeping the link flowing.

Glossary

  1. Single point of failure: a risk to an IT network if one part of the system brings down a larger part of the entire system.

  2. Heartbeat packet: a soft detection technology that monitors the health of inline appliances. Read the heartbeat packet blog here.

  3. Critical link: the connection between two or more network devices or appliances that if the connection fails then the network is disrupted.

NETWORK MANAGEMENT | THE 101 SERIES